$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: ymzzQ7OPFY3R7g16muZxO5ONGHni3XfvF0rmeC7fjY8= Subject key identifier: 03:9D:1A:E9:46:2E:C7:FF:9C:2C:36:01:A4:CB:71:22:EA:4B:4C:AE Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 02D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 02D0 Signing time: Sun 19 Oct 2025 03:29:30 +0000 Manifest this update: Sun 19 Oct 2025 03:29:29 +0000 Manifest next update: Sun 26 Oct 2025 03:29:29 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: KjnyJURCr89MfzRE+47fr9mf8jZ9mSYhja9xLT0SNZM=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: u8H4NSNtBcIg5GrlIWnmn+sl29NyMYEZMtRVlCln8c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Oct 19 03:29:29 2025 GMT Not After : Oct 26 03:29:29 2025 GMT Subject: CN=68f45b19-d95e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:42:55:f3:c2:65:60:2d:85:71:68:a4:0b:8d: e5:d2:03:05:e1:c1:c0:86:1e:4e:7b:81:ca:72:04: 92:ce:a3:ad:40:11:af:f9:02:a5:15:92:14:df:11: 8c:68:b6:86:2d:aa:d5:33:76:3f:c7:ae:ce:87:a9: 9d:4d:82:27:cb:3e:c3:fd:03:27:71:d0:d8:45:63: e9:94:a9:f8:3f:93:a8:a1:20:4a:a3:95:8b:16:2a: 37:2d:08:9d:0a:ea:dc:24:2c:cf:58:e8:c3:79:b6: ea:15:98:f9:39:1d:e9:f8:2d:0e:ea:51:e4:d5:c1: 61:ff:a5:9c:27:a8:f5:f3:12:12:61:db:41:d0:59: 7e:7b:8c:76:8e:a5:4b:53:49:6f:1a:93:16:1a:0f: ae:bd:c2:bb:35:a3:6c:1e:29:66:75:5a:6c:ee:3e: 2b:01:56:cb:eb:19:7e:87:c9:3d:20:c8:bd:a0:bf: 08:20:d4:09:c5:9b:e1:82:69:95:cd:36:94:03:81: 02:87:c4:90:bb:d5:bc:80:09:2a:dc:6f:79:a8:2e: 61:0f:10:52:0c:ef:55:d6:63:45:9a:df:30:d6:99: b3:6e:0a:2a:57:96:51:f1:fb:f9:54:ba:e7:d8:fa: 36:86:9c:f0:94:3e:03:d0:d8:fa:02:27:df:1a:ac: 40:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:9D:1A:E9:46:2E:C7:FF:9C:2C:36:01:A4:CB:71:22:EA:4B:4C:AE X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:f3:25:dd:4a:b6:18:85:23:2f:d0:65:b1:8a:25:80:13:e4: ca:13:4f:22:83:ba:a1:8b:c8:53:81:23:1a:0e:c5:e5:ce:cb: d6:55:a6:25:7d:df:ff:15:0d:5a:6a:d9:3c:00:83:a1:30:39: 45:e7:53:14:a9:db:3c:8a:1e:04:cb:11:6f:75:79:43:0b:e1: 46:61:47:7a:8f:55:b0:48:fe:b2:c9:8f:38:1e:13:c2:83:8c: a4:0c:60:cd:11:2f:6c:98:19:7b:9c:d8:60:07:54:2e:c2:25: 55:4d:9e:42:8d:67:73:4a:4c:55:86:d1:27:43:16:6b:1a:c6: b5:5b:5f:c2:dc:2e:87:f8:0a:78:15:1c:ca:9b:18:f6:ea:b6: 27:5c:41:7e:f3:c5:12:2e:fd:c0:9a:11:1c:1e:3d:63:c2:ad: 29:05:22:ae:9d:5a:e9:03:69:5d:2b:29:00:4e:4d:ee:97:e1: 17:71:23:96:30:74:7c:62:ff:76:94:54:96:39:21:c7:fa:70: 75:36:fb:dd:db:9c:1b:d4:9d:8f:19:30:f4:55:81:57:cf:74: e1:0d:10:8c:4d:64:15:a6:a2:00:ec:9f:0f:15:30:75:6c:1e: a3:c4:af:5c:c8:c1:be:be:48:3b:f4:31:f5:27:80:3c:83:00: 3f:23:81:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUxMDE5MDMyOTI5WhcNMjUxMDI2MDMyOTI5WjAYMRYwFAYD VQQDEw02OGY0NWIxOS1kOTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkJV88JlYC2FcWikC43l0gMF4cHAhh5Oe4HKcgSSzqOtQBGv+QKlFZIU3xGM aLaGLarVM3Y/x67Oh6mdTYInyz7D/QMncdDYRWPplKn4P5OooSBKo5WLFio3LQid CurcJCzPWOjDebbqFZj5OR3p+C0O6lHk1cFh/6WcJ6j18xISYdtB0Fl+e4x2jqVL U0lvGpMWGg+uvcK7NaNsHilmdVps7j4rAVbL6xl+h8k9IMi9oL8IINQJxZvhgmmV zTaUA4ECh8SQu9W8gAkq3G95qC5hDxBSDO9V1mNFmt8w1pmzbgoqV5ZR8fv5VLrn 2Po2hpzwlD4D0Nj6AiffGqxAsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOdGulG Lsf/nCw2AaTLcSLqS0yuMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA38yXdSrYYhSMv0GWxiiWAE+TKE08ig7qhi8hTgSMaDsXlzsvWVaYl fd//FQ1aatk8AIOhMDlF51MUqds8ih4EyxFvdXlDC+FGYUd6j1WwSP6yyY84HhPC g4ykDGDNES9smBl7nNhgB1QuwiVVTZ5CjWdzSkxVhtEnQxZrGsa1W1/C3C6H+Ap4 FRzKmxj26rYnXEF+88USLv3AmhEcHj1jwq0pBSKunVrpA2ldKykATk3ul+EXcSOW MHR8Yv92lFSWOSHH+nB1Nvvd25wb1J2PGTD0VYFXz3ThDRCMTWQVpqIA7J8PFTB1 bB6jxK9cyMG+vkg79DH1J4A8gwA/I4Ew -----END CERTIFICATE-----Generated at Mon Oct 20 21:40:18 2025 by rpki-client